npm - @the-ai-company/cbio-node-runtime - Versions diffs - 1.58.0 → 1.60.0 - Mend

@the-ai-company/cbio-node-runtime 1.58.0 → 1.60.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (137) hide show

package/docs/REFERENCE.md CHANGED Viewed

@@ -65,7 +65,8 @@ The `VaultClient` provides the administrative interface for the vault.
 The following owner-side methods are part of the supported public surface and are intended to be called through an owner session or a short-lived owner client:
-- `ownerWriteSecret(...)`
+- `ownerCreateSecret(...)`
+- `ownerUpdateSecret(...)`
 - `ownerReadSecretPlaintext(...)`
 - `ownerExportSecret(...)`
 - `ownerCreateAgent(...)`
@@ -80,9 +81,11 @@ The following owner-side methods are part of the supported public surface and ar
 - `ownerRegisterFlow(...)`
 - `ownerSubmitCapabilityRequest(...)`
 - `ownerListCapabilityStates(...)`
-- `ownerExecuteCapabilityStateOnce(...)`
-- `ownerExecuteCapabilityStateAndGrant(...)`
-- `ownerRejectCapabilityState(...)`
+- `ownerApproveCapabilityWrite(...)`
+- `ownerApproveCapabilityRead(...)`
+- `ownerAllowOnce(...)`
+- `ownerAllowAlways(...)`
+- `ownerDeny(...)`
 - `ownerOnCapabilityState(...)`
 - `ownerIssueSessionToken(...)`
 - `ownerIssueAllSessionTokens()`
@@ -90,18 +93,21 @@ The following owner-side methods are part of the supported public surface and ar
 - `ownerReadAudit(...)`
 ### Core Operations
-- `ownerWriteSecret(...)`: Store a secret and bind it to specific targets in one step.
+- `ownerCreateSecret(...)`: Insert a new active secret. The call fails if the alias already has an active record.
+- `ownerUpdateSecret(...)`: Insert a new successor version for the active alias and mark the previous version as superseded.
 - `ownerCreateAgent(...)`: Generate and host a new agent identity, then return its public record plus a session token.
 - `ownerImportAgent(...)`: Import an existing private key into vault custody, then return its public record plus a session token.
 - `ownerUpdateAgent(...)`: Update an agent's stored nickname and metadata.
 - `ownerListAgents()`: Enumerate authorized agents. Private keys are redacted from the default list response.
 - `ownerGrantCapability(...)`: Assign specific secret-use permissions to an agent. Capability IDs are generated internally.
-- `ownerSubmitCapabilityRequest(...)`: Create a `PENDING` capability state for later owner review.
-- `ownerListCapabilityStates(...)`: Read the unified capability-state table, optionally filtered by `agentId` or status.
-- `ownerExecuteCapabilityStateOnce({ requestId })`: Execute a concrete `PENDING` request once, then delete the state.
-- `ownerExecuteCapabilityStateAndGrant({ requestId })`: Execute a `PENDING` request and convert it to `GRANTED`. Capability IDs are generated internally.
-- `ownerRejectCapabilityState(requestId)`: Turn a `PENDING` state into `REJECTED`.
-- `ownerOnCapabilityState(callback)`: Register a real-time observer for capability-state changes.
+- `ownerSubmitCapabilityRequest(...)`: Create a capability carrier for later owner review.
+- `ownerListCapabilityStates(...)`: Read capability carriers, optionally filtered by `agentId`, `writeStatus`, or `readStatus`.
+- `ownerApproveCapabilityWrite({ requestId })`: Approve the outbound write action on a pending capability carrier.
+- `ownerApproveCapabilityRead({ requestId })`: Approve the inbound read action separately on the same carrier after write approval.
+- `ownerAllowOnce({ requestId })`: Execute a write-approved pending request once, then delete the carrier. This is only valid for dispatch-discovery carriers with a concrete blocked request.
+- `ownerAllowAlways({ requestId })`: Persist the carrier as an active capability. For dispatch discovery this also executes the blocked request; for explicit requests it grants the capability without sending network traffic. Capability IDs are generated internally.
+- `ownerDeny(requestId)`: Reject the currently pending action on the carrier.
+- `ownerOnCapabilityState(callback)`: Register a real-time observer for capability-carrier changes.
 - `ownerIssueSessionToken(input)`: Issue a session token for a specific agent.
 - `ownerIssueAllSessionTokens()`: Batch-issue session tokens for ALL registered agents (Automatic during `createVaultClient` warmup).
 - `ownerRevokeSessionToken({ token })`: Invalidate a specific session token.
@@ -117,9 +123,9 @@ The following owner operations are sensitive actions:
 - `ownerReadSecretPlaintext(...)`
 - `ownerExportSecret(...)`
 - `ownerReadAgentPrivateKey(...)`
-- `ownerDeleteSecret(...)`
+- `ownerRemoveSecret(...)`
-All three require:
+All four require:
 - `password`
 - optional `verificationCode`
@@ -154,36 +160,42 @@ The `AgentClient` is used by delegated processes (e.g., LLMs or background worke
 ### Core Operations
 - `agentDispatch(...)`: Use a granted capability to send a secret to an authorized target.
   - **Status**: Returns `SUCCEEDED`, `FAILED`, or `PENDING`.
+  - **Execution Semantics**: This is the method that attempts the real task immediately.
+  - **Result Delivery**: The full result is stored in a sealed request record; use `agentListRequests()` and `agentGetRequest(...)` to inspect it later.
   - **Discovery Flow**: If an agent attempts an action not explicitly in its white-list, the request is automatically stalled as `PENDING` for owner review.
-- `agentListCapabilities()`: Read the agent's unified capability-state table.
-  - Includes both `GRANTED` and `PENDING` entries.
-  - Pending rows cover both proactive requests and dispatch-discovery requests.
+- `agentListCapabilities()`: Read the agent's capability carriers, including current `write` and `read` action states.
 - `agentListSecrets()`: Read all secret metadata in the vault, with per-secret authorization markers showing which entries the agent can currently use.
-- `agentIntrospect()`: Read the vault-known self context (`agentId`, `identityId`, `nickname`, `metadata`) plus the unified capability-state table and tool manifest.
-- `agentSubmitCapabilityRequest(...)`: Ask the owner for a broader `scope + methods` grant before dispatching.
+- `agentListRequests()`: Read the agent's request history with partially redacted metadata.
+- `agentGetRequest(...)`: Read one request record and receive the result body only if the corresponding read action has been approved.
+- `ownerListRequests()`: Read request history as owner, including approval states.
+- `ownerGetRequest(...)`: Read the full sealed request record as owner, including response content before read release.
+- `agentIntrospect()`: Read the vault-known self context (`agentId`, `identityId`, `nickname`, `metadata`) plus capability carriers and the tool manifest.
+- `agentSubmitCapabilityRequest(...)`: Ask the owner for a broader `scope + methods` grant without executing any request.
 - **Security**: The agent never handles the vault's master password. Agent execution uses **Session Tokens** rather than raw private-key dispatch.
 - **Auditing**: Dispatches are audited by default. Set `skipAudit: true` in the capability (or during approval) to disable logging for specific actions.
-## Capability State Approval
+## Capability Action Approval
-The runtime uses one unified capability-state model:
+The runtime uses capability carriers with two independently approved actions:
-- **Dispatch discovery**: A concrete dispatch misses existing capability coverage and creates a `PENDING` state.
-- **Capability request**: An external planner or controller creates a broader `PENDING` state before any dispatch is attempted.
+- **Dispatch discovery**: A concrete dispatch misses existing capability coverage and creates a carrier with `write.status = PENDING`.
+- **Capability request**: An external planner or controller creates a broader carrier before any dispatch is attempted.
 This is useful for LLM-driven planners that can infer the needed scope ahead of time, for example:
 - scope `https://api.example.com/users/*`
 - methods `["GET"]`
-The state stays pending until the owner approves or rejects it:
-- `ownerSubmitCapabilityRequest(...)` creates the request record.
-- `ownerListCapabilityStates({ status: "PENDING" })` reads the current queue.
-- `ownerExecuteCapabilityStateOnce(...)` executes once and removes the pending state.
-- `ownerExecuteCapabilityStateAndGrant(...)` executes and persists a real capability.
-- `ownerRejectCapabilityState(...)` marks the state rejected.
+The carrier remains actionable until the owner approves or rejects its pending actions:
+- `ownerSubmitCapabilityRequest(...)` creates the carrier.
+- `ownerListCapabilityStates({ writeStatus: "PENDING" })` reads the current queue.
+- `ownerApproveCapabilityWrite(...)` approves the outbound write action first.
+- `ownerAllowOnce(...)` executes a write-approved discovery request once and removes the pending carrier.
+- `ownerAllowAlways(...)` persists a real capability carrier and also executes the blocked request when the carrier came from dispatch discovery.
+- `ownerApproveCapabilityRead(...)` can be applied later on the same carrier to release response visibility.
+- `ownerDeny(...)` marks the currently pending action rejected.
 - `ownerOnCapabilityState(...)` supports push-style owner interfaces.
-The proactive request flow does not replace dispatch discovery. Both flows now produce the same `PENDING` capability-state object.
+The proactive request flow does not replace dispatch discovery. Both flows now produce the same carrier shape with independent write/read action states.
 ## Storage Layout
@@ -192,7 +204,8 @@ The vault uses a unified encrypted partition:
 - `vaults/<vaultId>_v1/secrets.sealed`: Secret registry.
 - `vaults/<vaultId>_v1/agents.sealed`: Agent identity registry.
 - `vaults/<vaultId>_v1/capabilities.sealed`: Capability registry.
-- `vaults/<vaultId>_v1/custom-flows.sealed`: Custom flow registry.
+- `vaults/<vaultId>_v1/requests.sealed`: Sealed request-record registry.
+- `vaults/<vaultId>_v1/custom-flows.sealed`: Owner-defined HTTP request template registry.
 - `vaults/<vaultId>_v1/audit.jsonl`: Tamper-evident audit log.
 - `vaults/<vaultId>_v1/working-key.sealed`: Sealed working-key custody blob.
 - `vaults/<vaultId>_v1/secret-<secretId>.sealed`: Encrypted secret material.

package/docs/WORKS_WITH_CUSTOM_FETCH.md CHANGED Viewed

@@ -9,9 +9,9 @@ In the current first version:
 - `send_secret` dispatch may return response bodies to the agent
 - `acquire_secret` does not return raw response values; it returns protocol metadata plus a redacted response shape
 - `acquire_secret` currently supports only built-in standard extraction flows, not caller-defined extractors
-- owner-defined HTTP boundaries are created through `createOwnerHttpFlowBoundary(...)`
+- owner-defined HTTP request templates are created through `createOwnerHttpFlowBoundary(...)`
 - `createStandardAcquireBoundary(...)` and `createStandardDispatchBoundary(...)` derive the two built-in default boundaries
-- `custom_http` exists as an owner-defined exception path with fixed mode/target/method/response visibility
+- `custom_http` exists as an owner-defined request-template path with fixed mode/target/method/response visibility
 That split is intentional:

package/docs/api/README.md CHANGED Viewed

@@ -1,8 +1,8 @@
-**CBIO Node Runtime Agent API v1.58.0**
+**CBIO Node Runtime Agent API v1.60.0**
 ***
-# CBIO Node Runtime Agent API v1.58.0
+# CBIO Node Runtime Agent API v1.60.0
 ## Enumerations
@@ -37,11 +37,12 @@
 - [InitializeVaultCustodyOptions](interfaces/InitializeVaultCustodyOptions.md)
 - [IStorageProvider](interfaces/IStorageProvider.md)
 - [OwnerAgentProvisionResult](interfaces/OwnerAgentProvisionResult.md)
+- [OwnerCreateSecretInput](interfaces/OwnerCreateSecretInput.md)
+- [OwnerRemoveSecretInput](interfaces/OwnerRemoveSecretInput.md)
 - [OwnerSensitiveActionConfirmation](interfaces/OwnerSensitiveActionConfirmation.md)
 - [OwnerSensitiveActionContext](interfaces/OwnerSensitiveActionContext.md)
 - [OwnerSession](interfaces/OwnerSession.md)
-- [OwnerStoreSecretInput](interfaces/OwnerStoreSecretInput.md)
-- [OwnerWriteSecretInput](interfaces/OwnerWriteSecretInput.md)
+- [OwnerUpdateSecretInput](interfaces/OwnerUpdateSecretInput.md)
 - [RecoveredVault](interfaces/RecoveredVault.md)
 - [RecoverVaultOptions](interfaces/RecoverVaultOptions.md)
 - [RestoreIdentityOptions](interfaces/RestoreIdentityOptions.md)
@@ -52,7 +53,6 @@
 - [VaultClient](interfaces/VaultClient.md)
 - [VaultCoreDependenciesOptions](interfaces/VaultCoreDependenciesOptions.md)
 - [VaultCreateAgentInput](interfaces/VaultCreateAgentInput.md)
-- [VaultDeleteSecretInput](interfaces/VaultDeleteSecretInput.md)
 - [VaultExportSecretInput](interfaces/VaultExportSecretInput.md)
 - [VaultGrantCapabilityInput](interfaces/VaultGrantCapabilityInput.md)
 - [VaultGrantCapabilityRequest](interfaces/VaultGrantCapabilityRequest.md)

package/docs/api/classes/IdentityError.md CHANGED Viewed

@@ -1,4 +1,4 @@
-[**CBIO Node Runtime Agent API v1.58.0**](../README.md)
+[**CBIO Node Runtime Agent API v1.60.0**](../README.md)
 ***

package/docs/api/classes/OwnerClientError.md CHANGED Viewed

@@ -1,4 +1,4 @@
-[**CBIO Node Runtime Agent API v1.58.0**](../README.md)
+[**CBIO Node Runtime Agent API v1.60.0**](../README.md)
 ***

package/docs/api/classes/VaultCore.md CHANGED Viewed

@@ -1,4 +1,4 @@
-[**CBIO Node Runtime Agent API v1.58.0**](../README.md)
+[**CBIO Node Runtime Agent API v1.60.0**](../README.md)
 ***
@@ -117,6 +117,22 @@ This is the primary implementation of the Vault logic.
 ***
+### agentGetRequest()
+> **agentGetRequest**(`request`): `Promise`\<`AgentRequestResult`\>
+#### Parameters
+##### request
+`AgentGetRequestRequest`
+#### Returns
+`Promise`\<`AgentRequestResult`\>
+***
 ### agentGetRuntimeManifest()
 > **agentGetRuntimeManifest**(`command`): `Promise`\<`AgentRuntimeManifest`\>
@@ -149,6 +165,22 @@ This is the primary implementation of the Vault logic.
 ***
+### agentListRequests()
+> **agentListRequests**(`request`): `Promise`\<readonly `AgentVisibleRequestRecord`[]\>
+#### Parameters
+##### request
+`AgentListRequestsRequest`
+#### Returns
+`Promise`\<readonly `AgentVisibleRequestRecord`[]\>
+***
 ### agentListSecrets()
 > **agentListSecrets**(`request`): `Promise`\<readonly `AgentVisibleSecretRecord`[]\>
@@ -181,31 +213,31 @@ This is the primary implementation of the Vault logic.
 ***
-### ownerDeleteSecret()
+### ownerAllowAlways()
-> **ownerDeleteSecret**(`command`): `Promise`\<`void`\>
+> **ownerAllowAlways**(`command`): `Promise`\<`DispatchResult`\>
 #### Parameters
 ##### command
-`OwnerDeleteSecretCommand`
+`OwnerAllowAlwaysCommand`
 #### Returns
-`Promise`\<`void`\>
+`Promise`\<`DispatchResult`\>
 ***
-### ownerExecuteCapabilityStateAndGrant()
+### ownerAllowOnce()
-> **ownerExecuteCapabilityStateAndGrant**(`command`): `Promise`\<`DispatchResult`\>
+> **ownerAllowOnce**(`command`): `Promise`\<`DispatchResult`\>
 #### Parameters
 ##### command
-`OwnerExecuteCapabilityStateCommand`
+`OwnerAllowOnceCommand`
 #### Returns
@@ -213,19 +245,83 @@ This is the primary implementation of the Vault logic.
 ***
-### ownerExecuteCapabilityStateOnce()
+### ownerApproveCapabilityRead()
-> **ownerExecuteCapabilityStateOnce**(`command`): `Promise`\<`DispatchResult`\>
+> **ownerApproveCapabilityRead**(`command`): `Promise`\<`CapabilityStateRecord`\>
 #### Parameters
 ##### command
-`OwnerExecuteCapabilityStateCommand`
+`OwnerApproveCapabilityReadCommand`
 #### Returns
-`Promise`\<`DispatchResult`\>
+`Promise`\<`CapabilityStateRecord`\>
+***
+### ownerApproveCapabilityWrite()
+> **ownerApproveCapabilityWrite**(`command`): `Promise`\<`CapabilityStateRecord`\>
+#### Parameters
+##### command
+`OwnerApproveCapabilityWriteCommand`
+#### Returns
+`Promise`\<`CapabilityStateRecord`\>
+***
+### ownerCreateSecret()
+> **ownerCreateSecret**(`command`): `Promise`\<`SecretRecord`\>
+#### Parameters
+##### command
+`OwnerCreateSecretCommand`
+#### Returns
+`Promise`\<`SecretRecord`\>
+***
+### ownerDeleteSecret()
+> **ownerDeleteSecret**(`command`): `Promise`\<`void`\>
+#### Parameters
+##### command
+`OwnerDeleteSecretCommand`
+#### Returns
+`Promise`\<`void`\>
+***
+### ownerDeny()
+> **ownerDeny**(`command`): `Promise`\<`CapabilityStateRecord`\>
+#### Parameters
+##### command
+`OwnerDenyCommand`
+#### Returns
+`Promise`\<`CapabilityStateRecord`\>
 ***
@@ -253,6 +349,30 @@ This is the primary implementation of the Vault logic.
 ***
+### ownerGetRequest()
+> **ownerGetRequest**(`actor`, `targetRequestId`, `request?`): `Promise`\<`OwnerRequestRecord`\>
+#### Parameters
+##### actor
+`VaultPrincipal` & `object`
+##### targetRequestId
+`string`
+##### request?
+`Omit`\<`OwnerGetRequestRequest`, `"vaultId"` \| `"actor"` \| `"targetRequestId"`\>
+#### Returns
+`Promise`\<`OwnerRequestRecord`\>
+***
 ### ownerIssueAllAgentSessionTokens()
 > **ownerIssueAllAgentSessionTokens**(`actor`): `Promise`\<`OwnerSessionToken`[]\>
@@ -345,6 +465,30 @@ This is the primary implementation of the Vault logic.
 ***
+### ownerListRequests()
+> **ownerListRequests**(`actor`, `agentId?`, `request?`): `Promise`\<readonly `OwnerVisibleRequestRecord`[]\>
+#### Parameters
+##### actor
+`VaultPrincipal` & `object`
+##### agentId?
+`string`
+##### request?
+`Omit`\<`OwnerListRequestsRequest`, `"agentId"` \| `"vaultId"` \| `"actor"`\>
+#### Returns
+`Promise`\<readonly `OwnerVisibleRequestRecord`[]\>
+***
 ### ownerListSecrets()
 > **ownerListSecrets**(`actor`, `request?`): `Promise`\<readonly `AgentVisibleSecretRecord`[]\>
@@ -455,19 +599,19 @@ This is the primary implementation of the Vault logic.
 ***
-### ownerRejectCapabilityState()
+### ownerRemoveSecret()
-> **ownerRejectCapabilityState**(`command`): `Promise`\<`CapabilityStateRecord`\>
+> **ownerRemoveSecret**(`command`): `Promise`\<`void`\>
 #### Parameters
 ##### command
-`OwnerRejectCapabilityStateCommand`
+`OwnerDeleteSecretCommand`
 #### Returns
-`Promise`\<`CapabilityStateRecord`\>
+`Promise`\<`void`\>
 ***
@@ -545,6 +689,22 @@ This is the primary implementation of the Vault logic.
 ***
+### ownerUpdateSecret()
+> **ownerUpdateSecret**(`command`): `Promise`\<`SecretRecord`\>
+#### Parameters
+##### command
+`OwnerUpdateSecretCommand`
+#### Returns
+`Promise`\<`SecretRecord`\>
+***
 ### ownerWriteSecret()
 > **ownerWriteSecret**(`command`): `Promise`\<`SecretRecord`\>